CVE-2025-35452
CRITICALDescription
PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use default, shared credentials for the administrative web interface.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| ptzoptics | pt12x-sdi-xx-g2_firmware |
| ptzoptics | pt12x-sdi-xx-g2 |
| ptzoptics | pt12x-ndi-xx_firmware |
| ptzoptics | pt12x-ndi-xx |
| ptzoptics | pt12x-usb-xx-g2_firmware |
| ptzoptics | pt12x-usb-xx-g2 |
| ptzoptics | pt20x-sdi-xx-g2_firmware |
| ptzoptics | pt20x-sdi-xx-g2 |
| ptzoptics | t20x-ndi-xx_firmware |
| ptzoptics | t20x-ndi-xx |
| ptzoptics | pt20x-usb-xx-g2_firmware |
| ptzoptics | pt20x-usb-xx-g2 |
| ptzoptics | pt30x-sdi-xx-g2_firmware |
| ptzoptics | pt30x-sdi-xx-g2 |
| ptzoptics | pt30x-ndi-xx_firmware |
| ptzoptics | pt30x-ndi-xx |
| ptzoptics | pt12x-zcam_firmware |
| ptzoptics | pt12x-zcam |
| ptzoptics | pt20x-zcam_firmware |
| ptzoptics | pt20x-zcam |
| ptzoptics | ptvl-zcam_firmware |
| ptzoptics | ptvl-zcam |
| ptzoptics | pteptz-zcam-g2_firmware |
| ptzoptics | pteptz-zcam-g2 |
| ptzoptics | pteptz-ndi-zcam-g2 |
| ptzoptics | pteptz-ndi-zcam-g2 |
| ptzoptics | pt12x-4k-xx-g3_firmware |
| ptzoptics | pt12x-4k-xx-g3 |
| ptzoptics | pt20x-4k-xx-g3_firmware |
| ptzoptics | pt20x-4k-xx-g3 |
| ptzoptics | pt30x-4k-xx-g3_firmware |
| ptzoptics | pt30x-4k-xx-g3 |
| ptzoptics | pt12x-link-4k-xx_firmware |
| ptzoptics | pt12x-link-4k-xx |
| ptzoptics | pt20x-link-4k-xx_firmware |
| ptzoptics | pt20x-link-4k-xx |
| ptzoptics | pt30x-link-4k-xx_firmware |
| ptzoptics | pt30x-link-4k-xx |
| ptzoptics | pt12x-se-xx-g3_firmware |
| ptzoptics | pt12x-se-xx-g3 |
| ptzoptics | pt20x-se-xx-g3_firmware |
| ptzoptics | pt20x-se-xx-g3 |
| ptzoptics | pt30x-se-xx-g3_firmware |
| ptzoptics | pt30x-se-xx-g3 |
| ptzoptics | pt-studiopro_firmware |
| ptzoptics | pt-studiopro |
| ptzoptics | vl_fixed_camera_firmware |
| ptzoptics | vl_fixed_camera |
| ptzoptics | ndi_fixed_camera_firmware |
| ptzoptics | ndi_fixed_camera |
| multicam-systems | mcamii_ptz_firmware |
| multicam-systems | mcamii_ptz |
| smtav | ba30s_firmware |
| smtav | ba30s |
| smtav | ba20s_firmware |
| smtav | ba20s |
| smtav | bv20s_firmware |
| smtav | bv20s |
| smtav | bx30s_firmware |
| smtav | bx30s |
| smtav | bx20n_firmware |
| smtav | bx20n |
| smtav | bx20uhd-n_firmware |
| smtav | bx20uhd-n |
| smtav | bx20uhd_firmware |
| smtav | bx20uhd |
| smtav | ba30-n_firmware |
| smtav | ba30-n |
| smtav | ba20-n_firmware |
| smtav | ba20-n |
| smtav | ba12-n_firmware |
| smtav | ba12-n |
| smtav | hd17h-n_firmware |
| smtav | hd17h-n |
| smtav | bx20s-sh_firmware |
| smtav | bx20s-sh |
| smtav | hd17h_firmware |
| smtav | hd17h |
| smtav | bv30s_firmware |
| smtav | bv30s |
| smtav | ba12s_firmware |
| smtav | ba12s |
| valuehd | vx90_firmware |
| valuehd | vx90 |
| valuehd | vx720l_firmware |
| valuehd | vx720l |
| valuehd | vx752ag_firmware |
| valuehd | vx752ag |
| valuehd | vx752a_firmware |
| valuehd | vx752a |
| valuehd | vx751ba_firmware |
| valuehd | vx751ba |
| valuehd | vx630al_firmware |
| valuehd | vx630al |
| valuehd | vx61asl_firmware |
| valuehd | vx61asl |
| valuehd | vx61basl_firmware |
| valuehd | vx61basl |
| valuehd | vx60asl_firmware |
| valuehd | vx60asl |
| valuehd | vx61al_firmware |
| valuehd | vx61al |
| valuehd | vx60al_firmware |
| valuehd | vx60al |
| valuehd | vx701ra_firmware |
| valuehd | vx701ra |
| valuehd | vx701ta_firmware |
| valuehd | vx701ta |
| valuehd | vx800i2_firmware |
| valuehd | vx800i2 |
| valuehd | v61w_firmware |
| valuehd | v61w |
| valuehd | v63xl_firmware |
| valuehd | v63xl |
| valuehd | v60xl_firmware |
| valuehd | v60xl |
| valuehd | vx70uvs_firmware |
| valuehd | vx70uvs |
| valuehd | vx71uvs_firmware |
| valuehd | vx71uvs |
| valuehd | v71uvs_firmware |
| valuehd | v71uvs |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-35452? +
How severe is CVE-2025-35452? +
What products are affected by CVE-2025-35452? +
How do I check if I'm vulnerable to CVE-2025-35452? +
Related Vulnerabilities
Use of hard-coded credentials in KS-SOMED allowed an unauthorized attacker access to FTP server that hosted the application's update packages. …
We observed that Intellispace Portal binaries doesn’t have any protection mechanisms to prevent reverse engineering. Specifically, the app’s code is …
Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate …
An insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could …
An insecure sensitive key storage issue was found in MyASUS. potentially allowing unauthorized actor to obtain a token that could …
In Optigo Networks ONS NC600 versions 4.2.1-084 through 4.7.2-330, an attacker could connect with the device's ssh server and utilize …